About UsCyber-ThreatComplianceEnterpriseConsultingGSA ScheduleCareersContact

Security System Analyst

Location: San Antonio, TX Duration: Full Time
Job ID: 596 Category: Information Technology/Security
Travel: None Clearance Level: Secret
Out of Area Candidates Considered: Yes

Job Description
Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Secret clearance is required and must be clearable to the TS/SCI level.

Candidate will be doing the job of a Real Time analyst. 24/7 real time monitoring of AF network, doing initial identification of potential intrusions to pass to incident response for further development. Additional responsibilities may include:
• Perform log analysis.
• Perform packet analysis and be able to identify malformed packets.
• Be able to analyze the payload of the packet.
• Define the relationship between seemingly unrelated events.
• Use search engines and ArcSight knowledge base and reference pages.
• Perform advanced queries of NSD historical and reference databases.
• Make recommendations for rule and filter modifications and creation in IDS and ArcSight.
• Be able to take required elements of a report and create a properly formatted report.
• Understand differences between various operating systems – which OS an event came from and which OS is vulnerable to a certain attack.

Requirements:
• Ideally, candidates should possess a Masters degree and 5 years of experience; or a Bachelors degree and 8 years of work experience; or 15 years total working experience. At least 2 years for their working experience must be in a technical field. NOTE THAT THIS IS NOT A FIXED REQUIREMENT - ONLY A TARGET.
• Ideally, should have minimum of 5 years of IDS/IPS experience. Must have minimum of 2 years experience - preferably with computer and network security, intrusion detection and network monitoring, or combined training within the last 3 years of intrusion detection, intrusion prevention and network monitoring and Internet, and Domain name addressing; fundamental components of networks; and TCP/IP, FTP, and HTTP protocols.
Required Skills
• Must know the most commonly used ports and research lesser-known ports (ports that NSD normally sees).
• Know the type of traffic that should be seen into and out of the most commonly used ports.
• Understanding of network protocols.
• Understanding routing.
• Understand limitations of AF security policies.
• Make recommendations for TCNO & NOTAM that should be generated.
• Understanding of computer security and its limitations.
• Understand advanced hacking techniques.
• Understanding of commonly used AF network services – DNS, mail, web, etc. and be conversant in less common network services.


Submit Application

To apply for this position, click here.

To login and apply with your existing profile, click here.

Send to a friend:


Earn extra cash with Knowledge Consulting Group!!

KCG is offering every candidate we speak with a chance to earn $2,500 if they refer someone who we hire. If we hire your referral, we will send you a check within 30 days of your referral's start date.

Would you like to receive email notifications when new jobs are posted in your area of interest? If so, click here to set up a Job Alert Agent.